Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
File: _ORf1v09kyaEwMW8J_T6YVoQkOA.mft (raw, json)
Hash identifier: HztSq3eA8hwaiDnhp3yHv0SOPkrTuT1TUQ0IffzOyB0=
Subject key identifier: 98:6C:E8:ED:6F:02:B4:4E:5A:D7:40:E9:6D:01:76:74:EA:5B:91:AC
Authority key identifier: FC:E4:5F:D6:FD:3D:93:26:84:C0:C5:BC:27:F4:FA:61:5A:10:90:E0
Certificate issuer: /CN=fce45fd6fd3d932684c0c5bc27f4fa615a1090e0
Certificate serial: 01974D44E04C6F3624A26151416A42848A03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ORf1v09kyaEwMW8J_T6YVoQkOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
Manifest number: 0C02
Signing time: Sun 08 Jun 2025 02:00:48 +0000
Manifest this update: Sun 08 Jun 2025 02:00:48 +0000
Manifest next update: Mon 09 Jun 2025 02:00:48 +0000
Files and hashes: 1: 0q3J-c3dMCcb0fEi4kT4_OFKaDo.roa (hash: GFF2i9DOD9iNc83o9PQkrJQokdzx6TTVi4lrSIyhIgE=)
2: _ORf1v09kyaEwMW8J_T6YVoQkOA.crl (hash: pavnVt2k5XrL5MI5LPKYFZyS3C19ji86hBUs4SQFUx4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/_ORf1v09kyaEwMW8J_T6YVoQkOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 02:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:44:e0:4c:6f:36:24:a2:61:51:41:6a:42:84:8a:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fce45fd6fd3d932684c0c5bc27f4fa615a1090e0
Validity
Not Before: Jun 8 02:00:48 2025 GMT
Not After : Jun 9 02:00:48 2025 GMT
Subject: CN=986ce8ed6f02b44e5ad740e96d017674ea5b91ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:24:47:2e:13:fe:c5:92:df:f4:e5:70:33:ff:
eb:ee:f6:02:c7:41:2a:69:4b:5f:fc:54:08:43:7b:
6c:8f:7d:d5:14:78:3f:06:df:ba:86:ed:65:12:67:
b4:d4:69:20:44:99:c3:00:16:96:09:e8:65:b9:b6:
ea:bc:e3:36:78:ab:2d:ff:b7:7d:46:3e:81:84:78:
64:1b:47:12:cf:19:2e:d8:84:b1:c2:e3:cf:ef:5f:
49:55:7a:f2:91:73:d9:f1:f5:e9:c4:d4:3e:87:f1:
b4:d9:6b:3f:06:5d:ab:66:dd:4d:c0:bb:39:e1:bc:
f7:c0:cf:b1:7d:21:b3:a5:9b:e4:9f:55:f9:5e:94:
cc:a8:e8:80:05:d2:4d:c1:ef:f8:5d:c5:ad:fd:65:
b9:d4:1e:16:80:ca:75:1a:93:56:f5:da:18:d9:79:
58:97:b0:ca:c8:c2:20:16:8d:0f:0f:0b:c0:6e:90:
c8:6d:cc:64:01:21:8d:39:14:d4:b6:bb:7d:f3:25:
7d:4b:50:a1:e7:79:0a:af:1e:ff:1f:8a:73:5b:f9:
4d:04:01:ce:cb:f0:0a:2f:ac:b0:5d:2c:9c:a1:59:
0d:05:4a:75:3e:b1:12:f5:4c:e7:ce:f7:5a:df:5e:
fc:3d:f6:b3:09:32:62:21:8c:96:69:13:20:28:c9:
62:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:6C:E8:ED:6F:02:B4:4E:5A:D7:40:E9:6D:01:76:74:EA:5B:91:AC
X509v3 Authority Key Identifier:
keyid:FC:E4:5F:D6:FD:3D:93:26:84:C0:C5:BC:27:F4:FA:61:5A:10:90:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ORf1v09kyaEwMW8J_T6YVoQkOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/bf5a64-8aaf-44a8-bace-36850df4e997/1/_ORf1v09kyaEwMW8J_T6YVoQkOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:8b:fc:3a:00:5e:47:25:15:06:27:d9:31:a8:29:ca:8a:5d:
d9:f3:13:b7:5e:5c:7f:d2:92:21:16:cb:49:c1:a4:fc:a5:25:
35:de:cf:1d:e3:8a:c3:f4:86:0b:c0:35:12:b5:12:4f:1c:b3:
ac:f7:af:cf:f7:46:61:08:a6:94:61:06:ae:99:aa:80:d2:e6:
50:14:10:f2:99:c0:48:06:8d:59:eb:89:10:b0:c9:9f:0a:55:
54:b9:58:02:c5:4b:6e:42:64:ec:01:3c:4b:db:ef:90:da:1a:
1e:22:51:c2:2d:f0:e7:bc:79:94:70:50:a9:a8:0d:61:0f:06:
97:4a:13:44:5e:1a:e5:8d:06:b8:a7:28:16:d8:db:cf:fa:37:
f9:d0:65:61:cd:c9:e9:cf:53:36:60:d4:dc:c2:8a:c4:bd:ca:
bd:51:46:5b:35:04:78:62:48:f3:b8:80:30:df:77:aa:77:dd:
65:79:3b:e2:b5:d5:4b:19:ba:44:0f:c8:e4:bf:52:52:28:b8:
31:e5:ec:6c:d4:d9:17:3d:c2:0f:ec:47:64:d6:e8:60:ad:ea:
fa:f1:57:20:7d:c8:86:a0:75:6f:79:d6:65:f5:20:fa:69:60:
a4:39:66:bf:1f:56:77:9a:83:b2:4d:f5:ad:a5:4c:88:cd:43:
4e:23:9f:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 13:04:05 2025 by rpki-client